Avecto Privilege Guard

Effectively managing user privileges remains a challenge for almost all organizations. The need for users to configure certain settings on their computer, run legacy applications and install authorized software are just some of the reasons why users are often given excessive privileges.

Avecto Privilege Guard enables organizations to adopt the principle of least privilege. It is no longer necessary to assign admin rights to users, as these rights can now be assigned dynamically to applications, tasks and scripts.

For server administration, Privilege Guard may be used to grant local admin rights over specific applications, making it unnecessary to give these rights directly to a system administrator. In addition to creating a more secure server environment, any privileged activity may also be audited, with the option of logging detailed information, regarding changes to a server’s underlying configuration, such as registry settings, system files and services.

Whether you need to restrict the rights of system administrators or grant additional rights to standard users, Privilege Guard provides a solution that enables all users to run with standard rights. Policy settings determine which applications should be elevated and Privilege Guard assigns the relevant privileges to the process tokens of individual applications as they launch. The experience is seamless to the end user and does not require them to have access to a local admin account as all elevated applications still run in the full context of the logged on user.